meteomatics-weather-api
Pass
Audited by Gen Agent Trust Hub on Apr 22, 2026
Risk Level: SAFEEXTERNAL_DOWNLOADSPROMPT_INJECTION
Full Analysis
- [EXTERNAL_DOWNLOADS]: The skill instructs the installation of the official
@membranehq/clipackage from the NPM registry to facilitate integration with the Membrane platform. - [PROMPT_INJECTION]: The skill processes data from the Meteomatics Weather API, which constitutes an ingestion point for untrusted external data that could influence agent behavior.
- Ingestion points: Weather data parameters and API responses retrieved through the
membraneCLI. - Boundary markers: Absent; there are no specific delimiters or instructions to ignore potential commands embedded in the API data.
- Capability inventory: The skill utilizes the
membraneCLI to execute various shell-based actions and network operations. - Sanitization: Absent; the skill does not perform explicit validation, escaping, or filtering of the retrieved weather data.
- [SAFE]: The skill promotes secure credential management by delegating authentication to the Membrane platform instead of requiring the agent to handle or store API keys directly.
Audit Metadata